5a9c40d45f836e3e4bb13e2b6feaae24 | Triage

Sharing

General

Target

5a9c40d45f836e3e4bb13e2b6feaae24
Size

17KB
MD5

5a9c40d45f836e3e4bb13e2b6feaae24
SHA1

edcb16476945ecb2a85343b63c575d4b6c759598
SHA256

0b39ee02c1aa62452eb7d182c9ae7411a56706e0be2f572d0b197ba36f72ddf8
SHA512

74e03e53005091d65896ac1957cbf18e5052cbdd6e6e6834141aa00c8132944f92d405914150ee52f5db2fc9873a3160daa62ff93d1a66a460425aae5dd40f63
SSDEEP

96:2QKl1KGp061L/FOSp35GNmaj/7geGJ4LOB5rzvdWrQ:miGp06bp4H7geGJiOB7eQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5a9c40d45f836e3e4bb13e2b6feaae24

Files

5a9c40d45f836e3e4bb13e2b6feaae24
.exe windows:4 windows x86 arch:x86

c162473f2b23a9ebcac3fd8a0fcf7b1d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDCEx

kernel32

CreateThread
ExitProcess
GetLastError
GetTickCount
Sleep
WaitForSingleObject

gdi32

EnumFontsA

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 384B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ